StepSecurity Logo
StepSecurity
LoginStart free

Assess the risk of third-party GitHub Actions

Actions

Assess all the actions

Slashgear/action-check-pr-title

Slashgear/action-check-pr-title

Github action to check Pull Request title based on JS Regexp This action in really simple and use Github Action core library base on event of your pull requests No need to install anything on your runner to use it. Simple, fast, reliable 🎉

4/10
Maintained action available
yonasBSD/session-desktop/actions/setup_and_build

yonasBSD/session-desktop/actions/setup_and_build

Session Desktop - A Decentralized, Onion Routed, Private Messenger

3/10
Maintained action available
cisagov/setup-go-package

cisagov/setup-go-package

Composite GitHub action to install a Go package.

7/10
Tiryoh/gha-jobid-action

Tiryoh/gha-jobid-action

⚙️ GitHub Action to get the current workflow run's Job URL and ID

4/10
orhun/cargo-semver-checks-action

orhun/cargo-semver-checks-action

A GitHub Action for running cargo-semver-checks

2/10
step-security/ghaction-import-gpg/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

step-security/ghaction-import-gpg/__BUILDER_CHECKOUT_DIR__/.github/actions/secure-download-artifact

GitHub Action to import a GPG key. Secure drop-in replacement for crazy-max/ghaction-import-gpg.

10/10
approved-3rd-party-actions/branch-protection

approved-3rd-party-actions/branch-protection

0/10
step-security/ssh-agent/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/ssh-agent/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

GitHub Action to setup `ssh-agent` with a private key. Secure drop-in replacement for webfactory/ssh-agent.

10/10
step-security/runs-on-cache/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

step-security/runs-on-cache/__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check

Shockingly faster GitHub Action cache with S3 backend. Secure drop-in replacement for runs-on/cache.

10/10
shivammathur/setup-php

shivammathur/setup-php

GitHub action to set up PHP with extensions, php.ini configuration, coverage drivers, and various tools.

9/10
approved-3rd-party-actions/action-get-release

approved-3rd-party-actions/action-get-release

Get a Github release

2/10
modeseven-lfreleng-actions/tag-validate-action

modeseven-lfreleng-actions/tag-validate-action

Process and validate Git tags, check signing type/status

4/10
Maintained action available
chronograph-pe/build-push-action

chronograph-pe/build-push-action

GitHub Action to build and push Docker images with Buildx

3/10
grafana/shared-workflows/actions/go-flaky-tests

grafana/shared-workflows/actions/go-flaky-tests

A public-facing, centralized place to store reusable workflows used by Grafana Labs.

6/10
GuillaumeFalourd/wait-sleep-action

GuillaumeFalourd/wait-sleep-action

Github actions to wait / sleep during a workflow execution ⏱

3/10
jonabc/linked-project-columns

jonabc/linked-project-columns

GitHub Action to reflect changes from one project column to another

3/10
sergeysova/jq-action

sergeysova/jq-action

This lets you do jq operations in GitHub Actions.

3/10
bitwarden/gh-actions/azure-logout'

bitwarden/gh-actions/azure-logout'

Bitwarden-utilized GitHub Actions.

6/10
int128/create-ecr-repository-action

int128/create-ecr-repository-action

Action to create Amazon ECR or ECR Public repository and put lifecycle policy

6/10
bit-tasks/init

bit-tasks/init

Initialize Bit task for CI/CD

0/10